BP website again defaced via XSS to protest against oil spill

Friday, 18 June 2010

Independent security researchers PaPPy and Zeitjak have submitted to the archive a few XSS vulnerabilities affecting BP's official website and allowing for temporary anti-BP website defacements. I had a good laugh when I saw PaPPy's XSS defacement (view screenshot below). Sometimes cross-site scripting proves useful when protesting for a cause...